Table 1
Questions used to address research objectives
Table 2
Regression Results for Global IAE Models
Table 3
Regression Results for Split IAE Models
Code
Indicators
Frequency
PD_1
Internal audit charter
0
PD_2
Mission statement for the internal audit department
0
PD_3
Internal audit operating manual
1
PD_4
Internal audit strategy description
1
PD_5
Code of conduct/ethics
1
PD_6
Description of key performance indicators (KPIs)
1
PD_7
None
2
Code
Indicators
Frequency
RAC_1
All resources are spent on assurance
0
RAC_2
Almost all resources are spent on assurance, and few resources are spent on consulting
1
RAC_3
Resources are equally divided between assurance and consulting
2
RAC_4
Almost all resources are spent on consulting, and few resources are spent on assurance
0
RAC_5
All resources are spent on consulting
0
RAC_6
I don't know
0
Code
Indicators
Frequency
ACTIVITY_1
Operational audits
1
ACTIVITY_2
Audits of compliance with regulatory code (including privacy) requirements
3
ACTIVITY_3
Auditing of financial risks
2
ACTIVITY_4
Investigations of fraud and irregularities
2
ACTIVITY_5
Evaluating effectiveness of control systems (using COSO, COBIT, etc., frameworks)
2
ACTIVITY_6
Auditing of IT/ICT risks
1
ACTIVITY_7
Auditing of information risks
1
ACTIVITY_8
Management audits
2
ACTIVITY_9
Audits of risk management processes
2
ACTIVITY_10
Provide advice and consulting on risk management activities
1
ACTIVITY_11
Project management assurance/audits of major projects
1
ACTIVITY_12
Security assessments and investigations
2
ACTIVITY_13
External audit assistance
3
ACTIVITY_14
Corporate governance reviews
1
ACTIVITY_15
Reviews of governance policies and procedures related to the organisation's use of information technology (IT)
0
ACTIVITY_16
Disaster recovery testing and support
0
ACTIVITY_17
Facilitating risk/control/compliance training and education for organisation personnel
1
ACTIVITY_18
Auditing of outsourced operations
0
ACTIVITY_19
Ethics audits
1
ACTIVITY_20
Budget execution assessments
0
ACTIVITY_21
Reviews addressing linkage of strategy and company performance (e.g., balanced scorecard)
0
ACTIVITY_22
Due diligence reviews for corporate acquisitions/mergers, etc.
0
ACTIVITY_23
Quality/ISO audits
1
ACTIVITY_24
Tasks related to sustainability matters (ESG – Environmental, Social and Governance)
1
ACTIVITY_25
Migration to Accounting Standardisation System for Public Administrations (SNC-AP)
1
ACTIVITY_26
Implementation of Extensible Business Reporting Language (XBRL)
0
ACTIVITY_27
Adequacy and effectiveness of the internal control system assurance
2
ACTIVITY_28
Identifying emerging risks
2
ACTIVITY_29
Provide assurance on individual risks
0
ACTIVITY_30
Mining and analysing data for management
1
ACTIVITY_31
Recommending improvement
2
ACTIVITY_32
Informing and advising management
2
ACTIVITY_33
Informing and advising the audit committee
1
ACTIVITY_34
Informing key stakeholders
2
ACTIVITY_35
Assessing fraud risks and deterring fraud
2
Code
Indicators
Frequency
ACTIVITY_36
Assuring the adequacy and effectiveness of the organisation’s regulatory compliance processes
1
ACTIVITY_37
Testing the adequacy and effectiveness of management’s assessment of controls
2
ACTIVITY_38
Assuring the adequacy and effectiveness of the organisation’s governance processes
1
Code
Indicators
Frequency
R_1
Strategic risks
8
R_2
Risk management assurance/effectiveness
18
R_3
Corporate governance
6
R_4
Operational
18
R_5
Compliance/regulatory
25
R_6
Information technology (IT), not covered in other audits
9
R_7
Third-party relationships
1
R_8
Crisis management
1
R_9
Fraud, not covered in other audits
9
R_10
Cost/expense reduction or containment
6
R_11
General financial
9
R_12
Cybersecurity
0
R_13
Talent management
0
R_14
Data privacy
1
R_15
Economic and political volatility
1
R_16
Culture
2
R_17
Supplier management
3
R_18
Disruptive innovation
0
R_19
Social sustainability
1
R_20
Supply chain disruption
1
R_21
Environmental sustainability
8
R_22
Other
3
R_23
I'm not sure
9
Code
Indicators
IAA_1
Not aligned
IAA_2
Minimally aligned
IAA_3
Somewhat aligned
IAA_4
Almost fully aligned
IAA_5
Fully aligned
Code
Indicators
IAD_1
Internal audit is an independent objective assurance and consulting activity in my organisation
IAD_2
Internal auditing adds value and improves the organisations operations
IAD_3
Internal audit brings a systematic and disciplined approach to evaluate and improve the effectiveness of risk management
IAD_4
Internal audit brings a systematic and disciplined approach to evaluate and improve the effectiveness of control
IAD_5
Internal audit brings an approach to evaluate and improve the effectiveness of corporate governance processes
Code
Indicators
Mean
Median
SD
Skewness
Kurtosis
IAE_1
IA is aware of and sensitive to the organisation’s needs and operates accordingly
3.80
4
0.964
-1.454
2.727
IAE_2
The evaluation of IA reports made by individuals in managerial positions who were audited is positive
3.80
4
0.833
-1.217
2.924
IAE_3
The evaluation of IA reports made by individuals in operative positions who were audited is positive
4.03
4
0.747
-0.496
0.285
IAE_4
The evaluation of IA reports made by external auditors and other external authorities is positive
3.89
4
0.718
-0.331
0.252
IAE_5
IA identifies risks and competently assesses the adequacy and effectiveness of internal control systems
4.00
4
0.686
-0.580
1.153
IAE_6
IA gets the attention of top management and focuses it on issues audited by IA
3.37
4
1.031
-0.316
-0.590
IAE_7
The issues to be audited are decided after identifying risks, quantifying them and determining appropriate risk levels
3.66
4
0.838
-1.484
2.422
IAE_8
All control and auditing activities in the organisation are performed by IA or are coordinated with IA, including external auditing
3.49
4
1.147
-0.707
0.002
IAE_9
IA is an autonomous and independent organisational unit
3.83
4
0.985
-0.812
0.713
IAE_10
The IA department and its military are reliable and behave with integrity
4.31
4
0.796
-2.128
7.829
IAE_11
The IA department is valued by management and makes valuable contributions during meetings
3.63
4
0.910
-0.902
1.041
IAE_12
IA is a source of valuable data and information for the decision-makers in the organisation
4.17
4
0.747
-0.294
-1.106
IAE_13
The information provided by IA is vital to organisational operations
3.97
4
0.857
-0.836
0.551
IAE_14
The costs of IA to the organisation are higher than the benefits and savings that result from its work (Reverse scored.)
4.23
4
0.731
-0.869
1.158
IAE_15
All auditing functions that were approved in the auditing plans are performed completely
3.74
4
0.950
-0.754
0.824
IAE_16
In addition to the issues determined and approved for inclusion in the annual audit, there are requests to the IA department to audit other issues
3.83
4
0.822
-0.675
0.382
IAE_17
The number of complaints about the IA department is very low
3.89
4
0.758
-0.232
-0.206
IAE_18
Those who are audited demonstrate a high level of satisfaction with the work of the IA department
3.63
4
0.770
-1.279
3.078
IAE_19
The time that passes between completing the audit and submitting the final report is too long (Reverse scored.)
3.29
4
1.152
-0.112
-1.215
IAE_20
The findings of internal audits are very significant for the organisation
4.03
4
0.857
-0.651
-0.007
IAE_21
The findings of internal audits are always based on documents and reliable data
4.31
4
0.676
-0.479
-0.697
IAE_22
The recommendations of the IA department can be easily implemented
3.29
3
0.789
-0.569
-1.140
IAE_23
The recommendations of the IA department provide practical, cost-benefit solutions for correcting the problems that were found
3.57
4
0.778
-1.445
2.639
IAE_24
Only a small portion of the IA department’s recommendations is implemented (Reverse scored.)
3.00
3
0.907
-0.250
-1.214
IAE_25
The IA reports are rigorous and accurate
3.94
4
0.802
-0.256
-0.523
IAE_26
The IA reports are clear and well presented
4.20
4
0.584
-0.038
-0.163
IAE_27
The IA reports include an introduction, goals, subjects, conclusions and recommendations
4.06
4
0.802
-0.831
0.842
IAE_28
The IA reports are professional and of high quality
4.09
4
0.853
-1.376
3.693
IAE_29
The management’s decision-making process is strongly affected by the reports and findings of the IA department
3.14
3
0.810
0.079
1.248
IAE_30
The IA department contributes to the organisation above and beyond its operating costs
3.71
4
0.789
0.187
-0.673
IAE_31
IA improves organisational performance
4.17
4
0.618
-0.906
3.558
IAE_32
IA develops appropriate annual audit plans
4.09
4
0.612
-0.041
-0.151
IAE_33
Timely action is taken to implement the recommendations of the IA reports
3.51
4
0.612
-0.057
-0.237
IAE_34
IA provides adequate follow-up to ensure that appropriate corrective action is taken and that it is effective
3.83
4
0.707
-1.335
2.438
Code
Indicators
Mean
Median
SD
Skewness
Kurtosis
HRMP_1
The organisation develops training programs in ESG management to increase ESG awareness, skills and expertise of military
2.77
3
0.973
-0.323
-0.810
HRMP_2
The organisation has integrated training to create the emotional involvement of military in ESG management
2.66
3
0.838
-0.531
-0.090
HRMP_3
The organisation has ESG knowledge management (link ESG education and knowledge to behaviours to develop preventative solutions)
2.74
3
0.919
-0.172
-0.766
HRMP_4
The organisation uses ESG performance indicators in the performance management system and appraisals
2.94
3
0.938
-0.109
-0.343
HRMP_5
The organisation sets ESG targets, goals and responsibilities for managers and other military
2.97
3
0.954
-0.371
0.001
HRMP_6
In the organisation, managers are set objectives on achieving ESG outcomes included in appraisals
2.94
3
1.056
-0.358
-0.622
HRMP_7
In the organisation, there are dis-benefits in the performance management system for non-compliance or not meeting ESG management goals
2.74
3
0.950
-0.536
-0.461
HRMP_8
The organisation has a clear developmental vision to guide the military’s actions in ESG management
2.89
3
0.932
-0.224
-1.006
HRMP_9
In the organisation, there is a mutual learning climate among military for ESG behaviour and awareness in Portuguese Air Force
3.09
3
1.011
-0.361
-0.812
HRMP_10
In the organisation, there are a number of formal or informal communication channels to spread ESG culture in Portuguese Air Force
2.91
3
0.981
-0.018
-0.735
HRMP_11
In the organisation, military are involved in quality improvement and problem-solving on ESG issues
3.03
3
1.124
-0.322
-0.725
HRMP_12
The organisation offers practices for military to participate in ESG management, such as newsletters, suggestion schemes, problem-solving groups, low-carbon champions and ESG action teams
2.57
3
0.979
-0.012
-0.940
HRMP_13
The organisation emphasises a culture of ESG protection
2.83
3
0.985
-0.420
-0.771
Dimension
Code
Indicators
Mean
Median
SD
Skewness
Kurtosis
ENV
ESG_1
Procurement of environmentally friendly materials
3.46
3
0.886
0.003
-0.612
ESG_2
Energy usage
3.74
4
0.886
-0.530
-0.202
ESG_3
Materials usage
3.54
4
0.886
-0.272
-0.554
ESG_4
Greenhouse gas emissions
3.26
3
1.094
-0.119
-0.445
ESG_5
Hazardous waste management
4.00
4
0.907
-0.751
0.028
ESG_6
Water management
3.74
4
0.919
-0.172
-0.766
ESG_7
Impacts on biodiversity
3.40
3
1.006
0.199
-0.963
ESG_8
Climate risk
3.26
3
0.950
0.099
-0.964
SOC
ESG_9
Occupational health and safety
3.94
4
1.259
-1.106
0.415
ESG_10
Military retention and turnover
3.57
4
1.378
-0.515
-1.099
ESG_11
Training and education of military
3.77
4
1.031
-0.193
-1.164
ESG_12
Supply chain issues
3.51
4
1.040
-0.540
0.360
ESG_13
Human rights issues
3.40
3
1.117
-0.473
0.060
ESG_14
Community impacts and relations
3.34
3
0.802
-0.358
1.307
ESG_15
Donations and other humanitarian actions
3.09
3
0.887
-0.711
-0.149
ESG_16
Mission management (national and international)
3.89
4
0.932
-0.917
1.401
ESG_17
Mission privacy
3.69
4
1.051
-0.767
0.704
ESG_18
Data privacy and security
4.09
4
0.887
-0.711
-0.149
GOV
ESG_19
Governance structure
3.77
4
0.770
0.017
-0.511
ESG_20
Organisation culture
3.74
4
0.980
-0.238
-0.911
ESG_21
Ethics
3.94
4
1.110
-1.114
1.017
ESG_22
Conflicts of interest
3.57
4
1.092
-0.624
0.078
ESG_23
Remuneration structures and incentive systems
3.34
3
1.392
-0.245
-1.227
ESG_24
Diversity and equal opportunity
3.11
3
1.367
0.002
-1.125
ESG_25
Stakeholder dialogue
3.31
3
1.207
-0.227
-0.650
ESG_26
Risk management
3.80
4
0.964
-0.618
0.582
ESG_27
Strategic risks
3.69
4
1.105
-0.572
0.123
ESG_28
Corruption and bribery
3.86
4
1.033
-0.717
0.230
ESG_29
Anti-money laundering
3.77
4
1.003
-0.252
-1.000
ESG_30
Fraud
3.89
4
0.932
-0.455
-0.575
ESG_31
Whistleblower schemes
3.63
4
1.239
-0.805
-0.240
ESG_32
Intellectual property protection
3.54
4
1.146
-0.484
-0.365
Code
New construct
% of variance explained
Code
New construct
% of variance explained
IAE_2
IAE1
32.502
IAE_1
IAE2
9.323
IAE_3
IAE_6
IAE_5
IAE_7
IAE_10
IAE_11
IAE_21
IAE_33
IAE_25
IAE_34
IAE_26
IAE_12
IAE3
8.67
IAE_28
IAE_13
IAE_31
IAE_14
IAE_20
Code
Mean
Median
SD
Skewness
Kurtosis
Theoretical range
Actual range
IAA – overall
3.93
4
0.923
-0.149
-1.249
1 – 5
1 − 5
IAD – overall
4.17
4,2
0.689
-1.392
3.267
1 − 5
1 − 5
IAD_1
3.83
4
1.098
-0.631
-0.858
1 − 5
2 − 5
IAD_2
4.46
5
0.817
-2.430
8.513
1 − 5
1 − 5
IAD_3
4.29
4
0.789
-1.332
2.283
1 − 5
2 − 5
IAD_4
4.20
4
0.677
-0.867
2.069
1 − 5
2 − 5
IAD_5
4.09
4
0.742
-0.598
0.511
1 − 5
2 − 5
Mean
Median
SD
Skewness
Kurtosis
IAEG
3.95
3.89
0.514
-0.255
1.889
IAE1
4.10
4
0.582
-0.785
2.848
IAE2
3.63
3.83
0.711
-0.915
1.857
IAE3
4.10
4
0.639
-0.297
-0.643
HRMP
2.85
3
0.802
-0.301
-0.601
ESG
3.61
3.59
0.792
-0.265
-0.219
ENV
3.55
3.5
0.794
-0.119
-0.498
SOC
3.63
3.7
0.779
-0.485
0.212
GOV
3.64
3.86
0.911
-0.475
-0.321
Construct
CA
CR
AVE
IAEG
0.703
0.831
0.624
IAE1
0.925
0.937
0.625
IAE2
0.917
0.933
0.701
IAE3
0.805
0.871
0.640
RHMP
0.960
0.965
0.682
ESG
0.927
0.953
0.873
ENV
0.941
0.950
0.705
SOC
0.912
0.927
0.563
GOV
0.964
0.967
0.684
Construct
Item
Loadings
Construct
Item
Loadings
IAEG
IAE1
0.892
ESG
ENV
0.866
IAE2
0.760
SOC
0.979
IAE3
0.705
GOV
0.954
IAE1
IAE_2
0.777
ENV
ESG_1
0.829
IAE_3
0.810
ESG_2
0.744
IAE_5
0.736
ESG_3
0.823
IAE_10
0.762
ESG_4
0.853
IAE_21
0.745
ESG_5
0.814
IAE_25
0.862
ESG_6
0.923
IAE_26
0.762
ESG_7
0.898
IAE_28
0.889
ESG_8
0.861
IAE_31
0..752
SOC
ESG_9
0.829
IAE2
IAE_1
0.878
ESG_10
0.696
IAE_6
0.853
ESG_11
0.844
IAE_7
0.816
ESG_12
0.839
IAE_11
0.875
ESG_13
0.719
IAE_33
0.828
ESG_14
0.799
IAE_34
0.764
ESG_15
0.573
IAE3
IAE_12
0.761
ESG_16
0.717
IAE_13
0.931
ESG_17
0.707
IAE_14
0.491
ESG_18
0.736
IAE_20
0.932
GOV
ESG_19
0.699
RHMP
HRMP_1
0.856
ESG_20
0.827
HRMP_2
0.808
ESG_21
0.870
HRMP_3
0.883
ESG_22
0.898
HRMP_4
0.889
ESG_23
0.880
HRMP_5
0.738
ESG_24
0.801
HRMP_6
0.822
ESG_25
0.853
HRMP_7
0.543
ESG_26
0.823
HRMP_8
0.810
ESG_27
0.879
HRMP_9
0.835
ESG_28
0.805
HRMP_10
0.862
ESG_29
0.717
HRMP_11
0.857
ESG_30
0.779
HRMP_12
0.861
ESG_31
0.870
HRMP_13
0.902
ESG_32
0.848
Panel A
ESG
IAEG
HRMP
ESG
0.935
0.685
0.427
IAEG
0.587
0.790
0.557
HRMP
0.424
0.475
0.825
Panel B
ENV
GOV
SOC
IAEG
HRMP
ENV
0.8402
0.4791
0.4785
GOV
0.8271
0.6714
0.3532
SOC
0.7502
0.7698
0.3798
IAEG
0.4246
0.5988
0.6626
0.7906
0.5568
HRMP
0.5130
0.3683
0.3827
0.4742
0.8258
Panel C
ESG
IAE1
IAE2
IAE3
HRMP
ESG
0.935
0.636
0.385
0.408
0.427
IAE1
0.619
0.790
0.565
0.517
0.485
IAE2
0.391
0.515
0.836
0.418
0.486
IAE3
0.385
0.477
0.376
0.801
0.305
HRMP
0.422
0.461
0.471
0.197
0.825
Panel D
ENV
GOV
SOC
IAE1
IAE2
IAE3
HRMP
ENV
0.840
0.432
0.302
0.300
0.478
GOV
0.827
0.664
0.355
0.384
0.353
SOC
0.826
0.677
0.450
0.521
0.380
IAE1
0.436
0.657
0.660
0.790
0.565
0.517
0.485
IAE2
0.312
0.369
0.453
0.517
0.837
0.418
0.486
IAE3
0.270
0.364
0.461
0.478
0.379
0.800
0.521
HRMP
0.514
0.365
0.385
0.460
0.469
0.203
0.751